How do you set up an ISMS?

The development of an ISMS begins with the definition of the scope and security objectives. Risks are then identified, assessed and suitable security measures implemented. Regular reviews and adjustments are necessary to continuously improve security.

How does ISO 27001 work?

ISO 27001 is an international standard for ISMS that specifies best practices for implementing and maintaining an ISMS. Companies that are certified according to ISO 27001 have proven that they operate an effective ISMS.

How long is an ISO 27001 certificate valid for?

An ISO 27001 certificate is generally valid for three years, but requires annual surveillance audits to ensure ongoing compliance.

An Information Security Management System (ISMS) is a systematic approach to managing sensitive company information to ensure its confidentiality, integrity and availability. It comprises guidelines, processes, procedures and technologies to manage information security risks.

Why do I need an ISMS?

An ISMS is necessary to protect companies from security threats, meet legal requirements and build trust with customers and partners.

i-doit ISMS

A modular management suite for information security according to ISO/IEC 27001 and IT-Grundschutz according to BSI

Z

IT risk management, analysis and assessment at i-doit ISMS add-on developer becon.

Z

ISMS consulting, implementation and support for audits and certifications.

Z

Customizable, numerous report options and automation capability through extensive API.

Request a 30-day trial version

Whitepaper "Information Security Management Systems" by i-doit

Request Whitepaper

FAQ

Security

i-doit ISMS is a modular management suite for information security according to ISO/IEC 27001 and IT-Grundschutz according to BSI.

The advantages of i-doit ISMS

h

Compliant with standards
Support for ISO2700x, ISIS12, b3s (KRITIS) and BSI Standards 200-x incl. Import of various catalogues.



Comprehensive
The entire documentation of the information network in just one tool.



Visual
Graphical representation of dependencies and protection requirement inheritances.



Intuitive
Clear structures with intuitive operation.



Structured
Integrated service modeling, IT documentation and risk management under one interface.

f

Flexible
Customizable and adaptable to company requirements.



Informative
Extensive reporting options available with the option of creating your own reports.

}

Up-to-date
Data import and data updating can be automated via extensive API scripts.



Expandable
Many add-ons available for expansion, e.g. data protection, document generation, room planning, service desk connection, monitoring connection and much more.

INFORMATION SECURITY

Information Security Management System

The practical guide to the i-doit ISMS

Systems, applications and processes within organizations are becoming increasingly complex. This increases the attack surface that potential attackers and malware can exploit. The goal of information security is to keep this attack surface low and to protect corporate assets. The topic of security only gains importance in many companies when business-critical processes have been disrupted or financial damage has occurred. Most impacts can be averted with simple means or their scope can be drastically reduced. We would like to introduce you to these steps in the i-doit ISMS Practice Guide.



Download Whitepaper – ISMS

IT documentation with i-doit pro.

The ISMS Add-on provides security documentation management where it belongs – integrated with IT documentation.

YouTube link

Free webinar: NIS2 with the
i-doit Add-on ISMS

January 22, 2025 | 3 p.m.
Limited spots. Register now and secure your ticket!

Secure your place now!

"Webinar: NIS2 with the i-doit Add-on ISMS" Sold out

now for free

Test i-doit ISMS now 30 days free of charge!

Please do not hesitate to contact us for a non-binding discussion of your requirements.

Test now

The advantages of the ISMS Suite.

The functional scope of i-doit goes far beyond the mapping of ISMS functionalities.



Generic CMDB for IT and non-IT assets

s

Emergency Planning

~

Data protection according to DSGVO

P

Cabling Management

i

IT Service Modeling



Interfaces to numerous systems

FAQ – Frequently asked questions about ISMS

INFORMATION SECURITY

Execution of risk analyses according to ISO27001 standard with the i-doit add-on ISMS

User Story of Schweickert GmbH

The digital world undoubtedly has its challenges. Especially when it comes to managing sensitive information. Surely you know all too well about the risks involved. But how can you manage these risks effectively and efficiently without getting lost in a sea of Excel spreadsheets?

In our latest user story, Christian Berg, Security Consultant and Information Security Officer at Schweickert GmbH, presents a solution that addresses precisely this issue. In the user story, he reports on the decision-making process leading up to the use of the i-doit add-on ISMS and how the tool facilitates his work. With features such as the Tree-View, the ISMS Risk Matrix and a wealth of objects, he demonstrates how easy and cost-effective the implementation of an information security management system can be.



Download User Story – Schweickert GmbH

premium partner

becon is an i-doit Premium Partner, Certified Support Partner and Development Partner and thus provides the all-round carefree package.

premium partner

becon is an i-doit Premium Partner, Certified Support Partner and Development Partner and thus provides the all-round carefree package.

premium partner

becon is an i-doit Premium Partner, Certified Support Partner and Development Partner and thus provides the all-round carefree package.

Setup of an ISMS

In this free webinar, we will show you how to build an efficient ISMS with i-doit. Protect your data!

Webinar

becon blog